IEEE

ModSec-AdvLearn: Countering Adversarial SQL Injections With Robust Machine Learning

Abstract: Many Web Application Firewalls (WAFs) leverage the OWASP Core Rule Set (CRS) to block incoming malicious requests. The CRS consists of different sets of rules designed by domain experts to ...
IEEE

Hakuin: Optimizing Blind SQL Injection with Probabilistic Language Models

Abstract: SQL Injection (SQLI) is a pervasive web attack where a malicious input is used to dynamically build SQL queries in a way that tricks the database (DB) engine into performing unintended ...